Serial No. 10/764,966 
Amendment and Response to 
Office Action Mailed June 29, 2007 

AMENDMENTS TO THE CLAIMS 

The following listing of claims is provided in accordance with 37 C.F.R. § 1.121. 

1 . (Currently amended) A method of initializing a first security module in a 
computer, the method comprising the acts of: 

determining if the first security module is a controlling security module or a 

subordinate security module; 
generating at least one key if the first security module is the controlling security 

module; and 

receiving at least one key from anoth e r a second security module within the computer 
if the first security module is the subordinate security module. 

2. (Currently amended) The method, as set forth in claim 1, comprising the act 
of initializing the first and second security modules in a system the computer so that the first 
security module has at least one common key with another the second security module. 

3. (Currently amended) The method, as set forth in claim 1, wherein the first 
security or second security module comprises a trusted platform module (TPM). 

4. (Currently amended) The method, as set forth in claim 1, comprising the act 
of measuring [[a]] the computer system once the at least one key is generated. 

5. (Currently amended) The method, as set forth in claim 4, wherein the 
controlling security module measures the computer syst e m . 
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6. (Currently amended) The method, as set forth in claim 4, comprising the act 
of copying the measurement of the s yst e m computer into the subordinate security module. 

7. (Original) The method, as set forth in claim 1, wherein the at least one key 
comprises an endorsement key. 

8. (Original) The method, as set forth in claim 1, wherein the at least one key 
comprises a private key and a public key. 

9. (Currently amended) The method, as set forth in claim 1, comprising the act 
of accessing a lock bit to determine if the first security module is the controlling security 
module or the subordinate security module. 

10. (Currently amended) The method, as set forth in claim 9, wherein the lock bit 
is a setting within memory of the syst e m computer . 

1 1 . (Currently amended) The method, as set forth in claim 10, comprising 
accessing the lock bit via a bus coupled to the first security module and the memory or via a 
bus and a input/output controller coupled between the first security module and the memory. 

12. (Currently amended) The method, as set forth in claim 10, comprising the act 
of determining if the first security module in the system is initialized. 



Page 3 of 24 



Serial No. 10/764,966 
Amendment and Response to 
Office Action Mailed June 29, 2007 

13. (Currently amended) A first security module in a computer , comprising: 
a detector that is adapted to determine if the first security module is a 

controlling security module or a subordinate security module; 
a key generator that generates a key for the first security module if the first 

security module is the controlling security module; and 
a key receiver that receives the key from anoth e r a second security module 

within the computer if the first security module is the subordinate 

security module. 

14. (Currently amended) The first security module set forth in claim 1 3, wherein 
the first security module comprises a trusted platform module ("TPM"). 

15. (Currently amended) The first security module set forth in claim 14, wherein 
the first security module is adapted to determine if the first security module has undergone 
TPM initialization. 

16. (Currently amended) The first security module, as set forth in claim 14, 
wherein the key comprises an endorsement key. 

1 7. (Currently amended) The first security module, as set forth in claim 14, 
wherein the key comprises a private key. 
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18. (Currently amended) The first security module set forth in claim 13, wherein 
the first security module is adapted to measure a computer syst e m if the first security module 
is the controlling security module. 

19. (Currently amended) The first security module set forth in claim 13, wherein 
the first security module is adapted to access a lock bit to determine if the first security 
module is the controlling security module or the subordinate security module. 

20. (Currently amended) The first security module set forth in claim 1 9, 
comprising accessing the lock bit via a bus coupled to the first security module and [[the]] 
memory or via a bus and a input/output controller coupled between the first security module 
and the memory. 

2 1 . (Currently amended) A first security module in a computer , comprising: 
means for determining if anoth e r the first security module is a controlling security 

module or a subordinate security module; 
means for generating at least one key for the first oth e r security module if the first 

other security module modules is the controlling security module; and 
means for receiving at least one key from th e oth e r a second security module within 

the computer if the first security module is the subordinate security module. 

22. (Currently amended) The security module as set forth in claim 21, wherein 
the controlling security module is adapted to measure a computer system . 
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23. (Currently amended) A computer system , comprising: 
a processor; 

a hard disk op e rativ e ly coupl e d to th e proc e ssor and configur e d to stor e data for th e 
processor; 

[[a]] memory operatively coupled to the processor and configured to s tor e data 
retri e v e d from th e hard disk for us e by th e proc e ssor ; 

a vid e o controll e r op e rativ e ly coupl e d to th e proc e ssor and configur e d to produc e a 
di s play s ignal; 

a first security module and a second security module, each operatively coupled to the 
processor and the memory, the first and second security modules being configured to: 
determine whether the first security module or the second security module is a 

controlling security module or a subordinate security module; 
generate at least one key for the first security module or the second security module 

depending on whether the first security module or the second security module 

is the controlling security module; and 
receiving at least one key from the first security module or the second security module 

depending on whether the first security module or the second security module 

is the subordinate security module. 

24. (Currently amended) The computer system set forth in claim 23, wherein the 
first security module and the second security module each comprise a trusted platform 
module ("TPM"). 
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25. (Currently amended) The computer syst e m set forth in claim 24, wherein the 
at least one key comprises an endorsement key. 

26. (Currently amended) The computer system set forth in claim 24, wherein the 
at least one key comprises a private key and a public key. 

27. (Currently amended) The computer syst e m set forth in claim 23, wherein the 
first security module and the second security module are each adapted to determine if [[that]] 
the first security module has undergone TPM initialization and if the second security module 
has undergone TPM initialization . 

28. (Currently amended) The computer syst e m set forth in claim 23, wherein the 
controlling security module is adapted to measure a computer sy s tem . 

29. (Currently amended) The computer syst e m set forth in claim 23, wherein the 
first security module and the second security module are adapted to access a lock bit to 
determine if that the first security module is the controlling security module or the 
subordinate security module and to determine if the second security module is the controlling 
security module or the subordinate security module . 

30. (Currently amended) The computer s ystem set forth in claim 23, wherein the 
memory and the first security module are connected together on a bus and communicate 
through a bridge with the processor. 
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3 1 . (Currently amended) A method of initializing a plurality of security modules 
in a computer syst e m , the method comprising the act of: 

initializing each of the plurality of security modules so that each of the plurality of 
security modules has at least one common key. 

32. (Original) The method, as set forth in claim 3 1 , wherein each of the plurality 
of security modules comprises a trusted platform module ("TPM"). 

33. (Currently amended) The method, as set forth in claim 31, comprising 
accessing a lock bit in [[a]] memory by each of the plurality of security modules if the 
security module has not been initialized. 

34. (Original) The method, as set forth in claim 33, wherein at least one of the 
plurality of security modules is coupled to a bus that connects to the memory. 

35. (Currently amended) The method, as set forth in claim 3 1 , comprising 
booting the computer system once the plurality of security modules is initialized. 

36. (Currently amended) A networked computer system comprising: 
a plurality of comput e r systems computers : 

a network coupled to each of the plurality of computer syst e ms computers : 
at least one of the plurality of comput e r sy s t e ms computers comprising: 

a first security module and a second security module being configured to: 
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determine whether the first security module or the second security module is a 
controlling security module or a subordinate security module; 

generate at least one key for the first security module or the second security 
module depending on whether the first security module or the second 
security module is the controlling security module; and 

receiving at least one key from the first security module or the second security 
module depending on whether the first security module or the second 
security module is the subordinate security module. 

37. (Original) The system, as set forth in claim 36, wherein the first and the 
second security modules comprise a trusted platform module ("TPM"). 

38. (New) The computer set forth in claim 23, comprising non-volatile 
memory operatively coupled to the processor and configured to store data for the processor, 
wherein the memory is configured to store data retrieved from the non-volatile memory for 
use by the processor. 

39. (New) The computer set forth in claim 23, comprising a video 
controller operatively coupled to the processor and configured to produce a display signal. 
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